Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/lwwVHyc993vSpCWbWyE_HMbjQS8.roa
File: lwwVHyc993vSpCWbWyE_HMbjQS8.roa (raw, json)
Hash identifier: t5Wcj+TgCgMKDRlYAgoxTurCpg0XY0cJP3mxs928XzU=
Subject key identifier: 97:0C:15:1F:27:3D:F7:7B:D2:A4:25:9B:5B:21:3F:1C:C6:E3:41:2F
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0BA9
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lwwVHyc993vSpCWbWyE_HMbjQS8.roa
Signing time: Thu 15 Sep 2022 02:42:32 +0000
ROA not before: Thu 15 Sep 2022 02:42:32 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2985 (0xba9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Sep 15 02:42:32 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=970C151F273DF77BD2A4259B5B213F1CC6E3412F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a1:d8:86:9f:2c:9a:ed:ea:04:94:a0:25:b3:
2a:c9:45:a8:03:fc:bc:1f:dc:45:2c:5e:7d:cb:3f:
b6:31:07:8b:7d:6f:13:35:8f:be:dd:23:cc:b3:37:
0a:8a:bd:85:0b:44:bd:cf:09:a4:c9:5b:86:c9:cc:
4a:af:38:3c:11:fb:cb:29:de:45:19:92:a4:16:87:
ab:23:62:00:80:61:50:97:6b:38:a0:ee:c8:4e:95:
2c:96:e3:8b:66:52:60:01:17:00:94:d3:35:51:6e:
85:89:c1:7d:7b:5a:ae:88:98:4f:82:c7:14:13:62:
59:10:53:7c:ab:66:ac:78:53:dc:c2:b6:be:1f:f8:
f5:01:58:25:fa:5a:cd:da:24:2a:22:f4:d0:b3:94:
0e:33:ae:ee:d4:06:6e:d1:0d:68:f7:8b:7d:01:b0:
3d:bd:61:a6:b0:40:68:86:bd:d3:d4:c1:fb:c9:82:
4b:d8:41:86:28:6f:d5:52:93:3d:09:59:58:03:f4:
68:c6:93:b9:51:5a:44:fe:64:48:b5:17:f4:c4:86:
a5:80:de:19:5e:22:9f:ca:bc:83:be:1f:b7:bd:56:
f7:2b:f6:65:1a:29:c8:4c:57:6d:57:5a:c8:a3:66:
75:49:e5:60:51:b6:2a:da:96:f3:fe:a9:43:3d:9d:
bb:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:0C:15:1F:27:3D:F7:7B:D2:A4:25:9B:5B:21:3F:1C:C6:E3:41:2F
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/lwwVHyc993vSpCWbWyE_HMbjQS8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a1:46:8a:95:d0:ca:47:86:75:03:9b:b3:58:18:12:58:60:f0:
08:e3:97:b5:1a:43:1f:0a:2b:89:76:f1:ff:5d:fc:42:3f:88:
df:a5:77:d6:61:4b:73:00:d1:23:21:fc:20:e5:74:8a:18:d1:
7e:b2:d5:7d:28:a6:9c:f2:02:25:c5:f2:18:19:52:f9:c3:21:
4a:92:57:13:0c:04:ac:3c:5d:54:59:16:0a:ca:23:b9:17:0a:
e7:7c:c5:54:e1:49:3c:a2:83:5b:78:2f:a6:8d:03:e1:fa:86:
e0:32:e0:07:3b:49:48:2f:58:f7:c3:a2:02:5e:ba:f5:7f:f9:
30:71:f5:39:8e:3f:73:f1:76:7f:eb:49:a9:04:77:cf:d2:90:
e5:a5:20:80:92:37:75:49:4a:29:84:06:43:ff:dc:05:b1:75:
f8:8a:06:ad:e5:f3:82:01:a1:c6:4f:ef:bc:05:69:db:4a:dc:
c2:43:d6:d9:c2:61:38:79:62:73:30:f0:19:c4:a3:b3:ad:54:
90:e3:eb:53:9c:d1:9d:b4:1c:7e:93:a3:e8:04:6c:ab:0c:f8:
07:9b:4f:dc:61:6d:b9:89:8f:13:e7:cc:5d:d5:57:13:41:72:
d8:d5:77:b8:51:f4:06:b8:be:6f:12:52:70:c2:76:97:19:e9:
46:a7:6f:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 1 10:18:40 2023 by rpki-client on console-fra.rpki-client.org